CVE-2009-2730


Severity : High
Published : 2009-08-12
Modified : 2010-08-21
Base Score : 7.5
Details : libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's (1) Common Name (CN) or (2) Subject Alternative Name (SAN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
Product/Version : Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
Carrier Grade CGE 6.0  
 
 
 


CVE Vulnerabilities List CVE-2009
CVE-2009-5064CVE-2009-5029CVE-2009-4895CVE-2009-4881
CVE-2009-4880CVE-2009-4537CVE-2009-4410CVE-2009-4377
CVE-2009-4355CVE-2009-4308CVE-2009-4307CVE-2009-4272
CVE-2009-4141CVE-2009-4135CVE-2009-4134CVE-2009-4131
CVE-2009-4029CVE-2009-4022CVE-2009-4021CVE-2009-4020
CVE-2009-4017CVE-2009-4005CVE-2009-3889CVE-2009-3767
CVE-2009-3736CVE-2009-3726CVE-2009-3720CVE-2009-3639
CVE-2009-3621CVE-2009-3620CVE-2009-3612CVE-2009-3563
CVE-2009-3560CVE-2009-3559CVE-2009-3558CVE-2009-3557
CVE-2009-3555CVE-2009-3550CVE-2009-3547CVE-2009-3490
CVE-2009-3245CVE-2009-3238CVE-2009-3230CVE-2009-3228
CVE-2009-3095CVE-2009-3094CVE-2009-3080CVE-2009-3002
CVE-2009-3001CVE-2009-2910CVE-2009-2909CVE-2009-2908
CVE-2009-2903CVE-2009-2849CVE-2009-2848CVE-2009-2847
CVE-2009-2730CVE-2009-2563CVE-2009-2562CVE-2009-2560
CVE-2009-2417CVE-2009-2412CVE-2009-2409CVE-2009-2042
CVE-2009-1961CVE-2009-1895CVE-2009-1891CVE-2009-1890
CVE-2009-1632CVE-2009-1630CVE-2009-1574CVE-2009-1417
CVE-2009-1389CVE-2009-1387CVE-2009-1386CVE-2009-1378
CVE-2009-1377CVE-2009-1337CVE-2009-1297CVE-2009-1269
CVE-2009-1268CVE-2009-1267CVE-2009-1265CVE-2009-1252
CVE-2009-1210CVE-2009-1196CVE-2009-1195CVE-2009-1194
CVE-2009-1192CVE-2009-0949CVE-2009-0887CVE-2009-0859
CVE-2009-0835CVE-2009-0834CVE-2009-0798CVE-2009-0791
CVE-2009-0778CVE-2009-0316CVE-2009-0217CVE-2009-0163
CVE-2009-0159CVE-2009-0028CVE-2009-0021